can someone take a look at my hijack log

Okay if you have run ALL steps of the READ ME. Follow the guidelines below.

Make sure you have HijackThis 1.99.1 and follow the guidelines on where to install it and how to post a log as an ATTACHMENT. All instructions are covered in the sticky thread NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting


Now post a Hijack This log as an ATTACHMENT to your message (Do NOT copy/paste the log into your post). Please close unnecessary running programs before you run HijackThis. You must close each of the following: your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc.

Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file. Place it in its own folder, for example C:\Program Files\HJT

 

Is there a reason that you did not run the Symantec and TrendMicro online scanners?

You implied that you did.

 

If you are using WinXP or WinMe, make sure you have system restore disabled (per the tutorial).
For all OS types, make sure viewing of hidden files is enabled (per the tutorial).

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O2 - BHO: (no name) - {0D28D7CF-B5FF-431D-AE94-7BCA3A94DD8D} - C:\Program Files\xw0cig7f\xw0cig7f.dll (file missing)
O2 - BHO: (no name) - {2223703C-2B4E-41EB-8E08-FEE0BB76F3B3} - C:\Program Files\xw0cig7f\xw0cig7f.dll (file missing)
O2 - BHO: (no name) - {5F7B334F-1D7B-47F2-942E-8604125B88F7} - C:\Program Files\xw0cig7f\xw0cig7f.dll (file missing)
O2 - BHO: SDWin32 Class - {616E910B-6105-4870-8FFA-EF340B495D88} - C:\WINDOWS\system32\sezyw.dll
O2 - BHO: (no name) - {7CAEDE06-D15A-44C6-B663-E3FE695C1F19} - C:\Program Files\xw0cig7f\xw0cig7f.dll (file missing)
O2 - BHO: (no name) - {985DD5FC-9242-4792-81E8-CE3C1803813F} - C:\Program Files\xw0cig7f\xw0cig7f.dll (file missing)
O2 - BHO: (no name) - {D5C9BDF4-3F6C-4B24-A392-BADF070489C5} - C:\Program Files\xw0cig7f\xw0cig7f.dll (file missing)
Do you recognize this batch file below that runs at startup? If not, you should have HJT fix this line too. You should also add it to the list of files to delete then too.
O4 - Startup: Shortcut to Jcosgrove.lnk = C:\WINDOWS\Jcosgrove.bat

After clicking Fix, exit HJT.
Boot into safe mode and use Windows Explorer to delete:
C:\WINDOWS\system32\sezyw.dll

If you get an error when deleting a file. Right click on the file and check to see if the read only attribute is checked. If it is, uncheck it and try again.

Now:
Go to Start > Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
Temporary Files
Temporary Internet Files
Recycle Bin
And Click OK.

Now reboot in normal mode and post a new HJT log. And tell us how things are working.

 

You may need to just rename the file. Using a scheme like hjt1.log, hjt2.log....etc works well.

If that does not help, explain exactly what problem your are having getting your log uploaded and yes post it in line and I will change it for you.

 

Not according to your HJT log! If they were run, they would have place Active X controls on your PC and they would show up in the O16 lines of your HijackThis log. That means the online scans were not run.

 

Okay! But have you complete the steps from message # 5. If so, post your new HJT log. But, do not do this while running any online scans.